Remote work is worrying infosec leaders: Survey

The increasing number of employees working remotely today is causing grey hairs for infosec and business leaders with cybersecurity responsibilities, according to a new Cisco Systems survey.

Eighty-four per cent of the 6,700 respondents surveyed — including 81 per cent of the 300 Canadian respondents — said logging in remotely as part of hybrid work has increased cybersecurity risks for their organization.

Identical numbers — 84 per cent of global respondents and 81 per cent of Canadian respondents — believe unregistered devices used by staffers are likely to cause cybersecurity incidents for their organization.

And, not unexpectedly, there are large numbers of staffers using unregistered laptops, tablets, and smart phones for remote access. Eighty-four per cent of global respondents — and 79 per cent of Canadians — say their employees are logging onto work platforms from unregistered devices.

Seventy-one per cent of global respondents — including 65 per cent of Canadians — say their employees spend more than 10 per cent of the day working from unregistered devices. Forty-four per cent of global respondents said their employees are spending 20 per cent of their day or more on an unregistered device logged on to the company network.

The numbers point to the fact that “security took a backseat” when organizations were forced to shift workloads to the cloud fast, early in the pandemic, Jason Maynard, Alberta-based field chief technology officer for cybersecurity at Cisco Systems Canada, said in an interview.

The report points to the significant challenges infosec pros face in securing a remote workforce. Employees want a similar experience to working in the office, he said, but with security controls that don’t make it harder for them to do their jobs.

“It’s not just about work-from-home anymore,” he added, “it’s working from anywhere.” Employees are connecting over home, cellular, or coffee shop WiFi networks, he said. In fact 54 per cent of global survey respondents — and 58 per cent of Canadians — said their employees are connecting to the office over as many as five different networks. Another 22 per cent of global respondents — and 18 per cent of Canadians — said their staff have been connecting over as many as nine different networks.

Infosec leaders need to develop strategies and technologies that rate the level of trust of these devices and mitigate risk factors, Maynard said.

That may mean, for example, refusing to allow a device to access corporate data unless an antivirus and firewall are enabled. If the device is coming from an untrusted location, multifactor authentication may have to be added.

“Resilience is about verifying threats, understanding connections across your organization, and seeing the full context of any situation so you can prioritize and ensure your next action is the best one,” the report says.

Would you recommend this article?

Share

Thanks for taking the time to let us know what you think of this article!
We'd love to hear your opinion about this or any other story you read in our publication.


Jim Love, Chief Content Officer, IT World Canada

Featured Download

Howard Solomon
Howard Solomon
Currently a freelance writer, I'm the former editor of ITWorldCanada.com and Computing Canada. An IT journalist since 1997, I've written for several of ITWC's sister publications including ITBusiness.ca and Computer Dealer News. Before that I was a staff reporter at the Calgary Herald and the Brampton (Ont.) Daily Times. I can be reached at hsolomon [@] soloreporter.com

Featured Articles

Cybersecurity in 2024: Priorities and challenges for Canadian organizations 

By Derek Manky As predictions for 2024 point to the continued expansion...

Survey shows generative AI is a top priority for Canadian corporate leaders.

Leaders are devoting significant budget to generative AI for 2024 Canadian corporate...

Related Tech News

Tech Jobs

Our experienced team of journalists and bloggers bring you engaging in-depth interviews, videos and content targeted to IT professionals and line-of-business executives.

Tech Companies Hiring Right Now